Our Accreditations & Standards

ISO 27001 is the world’s best known standard for information security management systems and their requirements. It provides guidance for establishing, implementing, maintaining and continually improving an information security management system.

ISO 9001 sets out the criteria for a quality management system and is the only standard in the family that can be certified to. E-Sign uses ISO 09001 to help ensure that our customers get consistent and good-quality services, which in turn brings many business benefits.

Our ICO accreditation determines that our processing of personal data complies with GDPR requirements, in line with the accountability principle. The accreditation encourages the use of data protection certification mechanisms as a means to enhance transparency and compliance with GDPR.

Cyber Essentials is a UK Government backed scheme that certifies that our defences will protect against a wide variety of the most common cyber-attacks. These attacks are looking for targets who do not have the Cyber Essentials technical controls in place.

E-Sign is the only electronic signature provider on the Public Service Network. The PSN is the Government’s high security network, which enables public sector organisations to work together, reduce duplication and share resources.

The CCS plays an important role in helping the UK public sector save money when buying common goods and services. We are a Crown Commercial Service Provider, which means we are trusted by the Government and public sector organisations to provide high-quality and high-security solutions.

E-Sign maintains compliance with the latest version of the PCI Data Security Standard (DSS) to ensure safe and secure handling of customer payment information. E-Sign adopts a range of stringent data security standards and resources to ensure safe payments for our customers.

E-Sign remains compliant and works to ISO 15489-1:2016 standards. These standards define the concepts and principles from which the creation, capture and management of records are developed. We have a number of policies and processes in place to ensure the effective management of records and record controls.

E-Sign works to ISO 3001 standards, ensuring that we continuously improve the identification of opportunities and threats and effectively allocate and use resources for risk treatment. We follow strict policies and practices, regularly undertaking internal and external audits to manage potential and prevent risks.

The Global LEI index is the only global online source for open, standardised and high quality legal entity data. An LEI is a reference code used across markets and jurisdictions to uniquely identify a legally distinct entity that engages in a financial transaction.

E-Sign has met all requirements in becoming fully registered within the Financial Supplier Qualification System (FSQS), a standard used by major UK banks and financial organisations when selecting suppliers.

E-Signs processes are in full alignment with the core principles and obligations of the NIS2 directive. NIS2 aims to improve the EU’s overall cybersecurity posture by expanding the scope of covered entities and establishing uniform risk management and reporting obligations.